Engineer

Company Overview:

At Quaker Houghton, we are experts in the development, production and application of chemical specialties, process fluids, lubricants and coatings for the manufacturing industry. We have been an integral part in the growth of the world’s largest industrial companies and to this day our experience and expertise show in the actions and dedication of our Associates worldwide. Today, we have a global presence, with our corporate headquarters located in Conshohocken, PA. Quaker Houghton is a global publicly traded company with a unique collaborative culture that supports career growth for its associates and offers competitive compensation and benefit programs.

Summary:

Reporting to the Information Security Manager, the Cybersecurity Engineer II will operate and manage Quaker Houghton’s application and infrastructure security systems and assist in response and prevention of moderately complex IT / Cybersecurity related incidents. The Cybersecurity Engineer II will support the business objectives of the company in securing various infrastructure components including operating systems, databases and networking (LAN, Wireless and WAN), servers, IOT devices, cloud infrastructure and Quaker public websites and other related systems within Quaker Houghton.

Responsibilities:

• Perform daily technical cybersecurity operations in production, development, staging with implementation, development and maintaining technical security controls: threat management, vulnerability management, SIEM and incident detection tasks.
• Perform incident handling (e.g., forensic collections, intrusion correlation/tracking, threat analysis, and direct system remediation) tasks to support Incident Response Process and document incidents from initial detection through final resolution
• Collect all monthly statistics on the Quaker Houghton Cybersecurity environment and prepare monthly reporting.
• Oversee the Vulnerability Management program focusing on an asset level report weekly to ensure that outstanding issues are resolved. Lead weekly operational review meetings with a cross functional group of stakeholders to track and report on progress.
• Will backup the rest of the team on cyber related issues within Microsoft Intune.
• Will provide assistance with Microsoft Data Classification, DLP and other data related monitoring tasks as part of the team.
• Operate, maintain and provide unsolicited advice on Quaker Houghton technical Cybersecurity defense and operations
• Assist in technical IT (cybersecurity) projects
• Review and maintain Standard Operating Procedures as it relates to Cyber Security operations.
• Analyze and make recommendations to improve and secure network, system, and application architectures
• Review and make recommendations to information security policies, architectures, and standards when required
• Provides Quaker Houghton IT operations team with operational third line support and guidance when required. Partner with the Global infrastructure team on projects and maintaining the global infrastructure and is proficient in global information technology.

Key Education or Certification Required

• Bachelor’s degree in Information Technology, Cyber Security, Risk Management or equivalent combination of education and experience required
• CompTIA Security+, MCSE, CEH or equivalent preferred

Required Minimum Number of Years of Relevant Experience

• 3+ years of IT infrastructure experience
• 3+ years knowledge and hands-on experience with different security domains or disciplines (e.g. network security, endpoint security, protocols and associated hardware)
• 3+ years’ general experience in vulnerability scanning, firewall, WAN, LAN, Wireless (preferable Cisco), antivirus & malware analysis, proxy, IDS/IPS, log correlation tools, SIEM, DLP, NAC, and application firewall solutions.

Required Skills and Competencies

• Familiar with principles as RBAC, OWASP, Layered Defense and Defense in Depth
• Strong understanding of common computing attack vectors; information, host and network security hardening and requirements; networking protocols; common intrusion techniques; and common risk management concepts
• Require knowledge of IT frameworks as ITIL 3.0
• Requires advanced knowledge of Linux, Microsoft Operating Systems, Microsoft Server, Azure and Office 365
• Practical experience with security concepts, content filtering, vulnerability scanning, and anti-malware, and similar security tools
• Expert level of knowledge of different security monitoring tools, including but not limited to, implementation, rules, policies, logfiles, SIEM, XDR and/or Microsoft Sentinel.
• Experience with Microsoft Security applications like Microsoft O365 Email Defender, Microsoft Azure Security, Privileged Access Management, Multifactor Authenticator and Microsoft Security
• Advanced understanding of common computing attack vectors; information, host and network security hardening and requirements; networking protocols; SD-WAN (Software Defined Wide Area Network), MITRE; and common risk management concepts
• Experience and expertise with ethical hacking, firewall and intrusion detection/prevention technologies, secure coding practices and threat modeling Ability to juggle multiple priorities simultaneously
• Expert level knowledge of security concept, monitoring tooling, content filtering, vulnerability scanning, and (managed) endpoint detection and response (“EDR”), and similar security tools?
• Strong verbal and written communication skills required, as this position requires regular contact with various levels of management
• Analytical and Problem Solver - Identifies problems and uses available resources to identify a solution
• Acts with Integrity - Can be counted on to follow through with commitments
• Results Driven - Overcomes obstacles and finds resources to get things done. High energy self-starter who can work well with teams and independently. Ability to influence without authority.
• Structured - Structured way of working and strong written and verbal communication skills
• Understanding and appreciation of current, new and emerging technologies
• Ability to travel to other European or Global Q-H sites

EHS Responsibilities

• The employee must occasionally lift and/or move up to 10 pounds.
• While performing the duties of this Job, the employee is regularly required to sit.
• The employee is frequently required to talk or hear.
• The employee is occasionally required to stand; walk; use hands to finger, handle, or feel and reach with hands and arms.
• Maintain the Highest EHS standards.

What's in it for you:

• Competitive pay programs with excellent career growth trajectory
• Opportunities to see your efforts contribute toward the success of the business
• Work for a global leader in the industrial process fluids industry

Quaker Houghton is an equal opportunity employer committed to creating a diverse workforce. Quaker Houghton provides equal employment opportunity for all qualified candidates. Quaker Houghton does not discriminate against any candidate for employment based on race, color, religion, sex, gender, gender identity or expression, affectional or sexual orientation, pregnancy, age, creed, ancestry, national origin, citizenship, marital or domestic partnership or civil union status, veteran’s status, physical/mental disability, genetic information, or any other category protected by U.S federal, state, and/or local employment law. Furthermore, Quaker Houghton is committed to providing reasonable accommodations to qualified candidates with physical and/or mental disabilities. Applicants with a disability who need assistance applying for a position may email [email protected] .